Should I use cookies? [closed] - asp.net

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I created a website in ASP. People can login and register.
I read sometimes about cookies, why people are using them?
What is the advantage of using them? And do you guys prefer me to use that too?
And if I use cookies, for what kind of purporses should I use them?
Thanks!

You're coming at this the wrong way. You don't use cookies to use cookies. You use cookies because something you want to do requires cookie use.
In other words, don't worry about it unless you want to do something that needs cookies, then you know why you would want to use them. It becomes obvious.
It's like saying "I hear about these airplane thingies.. should I use them? What good are they?" Well, when you decide you want to travel somewhere, suddenly you understand what good they are. They're useless to you until then.

Cookies are useful for retaining information when the user leave your website.
For example, if you want an option "Remember me" on your login form, you have to use cookies to store user's authentication token and connect him automatically the next time he visits your website.
But if you use it, you should learn more about it.

Related

How to scrape data off websites that require validation code? [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 4 years ago.
Improve this question
Is it possible to scrape data automatically from websites that require a validation code each time a webpage is accessed? Such as the case when the website shows you a picture of the code and asks you to enter what is shown in the picture. I'm using the rvest package. Is this possible to do?
What you're trying to do is beat CAPTCHAs. That's possible but very hard. This is a spammer's hardest job - to come up with an algorithm smart enough to fill out those fields correctly. It's not something you're supposed to do, the whole point of those validation codes is to prevent access from non-humans. If you're smart and motivated enough to figure out how to answer those questions programatically, you can probably make more money doing that than whatever you're trying to do :)
Some websites offer a direct API, which is the way you're supposed to interact with their data. But getting past a CAPTCHA by scraping is not an easy deed.

Why Single-Page Web Application [closed]

Closed. This question is opinion-based. It is not currently accepting answers.
Want to improve this question? Update the question so it can be answered with facts and citations by editing this post.
Closed 7 years ago.
Improve this question
While Single-Page application approach is rising as a web development choice, I still don't understand, practically, how would losing the ability to go back/forward in the browser be an O.K sacrifice? Imagine Facebook without direct page navigation! Is there an essential/direct purpose for SPA I can't get my hands on?
You wont have to give up back button functionality to develop a single page application. HTML5 has a history api (and there's polyfills for older browsers) which allows your to keep back button functioning properly.
The main reason (in my opinion) to go for a single page approach is the more app-like feel it gives you. For example gmail feels more like an app than a web page, and given its purpose, I think that's way it should be too. Another example might be the pixlr online image editor.
Single page approach indeed doesn't suit every purpose, but when you want a webapp to feel just that, instead of a website, then single page might be the way to go.
You mentioned direct navigation in comments, and that's totally doable if it's something that makes sense in your context. Angularjs can do that, and I'm sure pretty much every modern single page framework has a way of implementing this.

How can one protect from malicious code inside a website? [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
I have recently taken ownership of an Wordpress website, after having a long dispute with the previous developer.
Because of this, I want to make sure that he didn't left some malicious code inside - to steal passwords, change things in the database, remove files ....
So the question is that instead of checking each file inside (Wordpress core, plugins, and so on) - what other possibilities I have to make sure that there is no threat? How can one protect himself from an inside attack?
I know that this can be difficult to answer, but maybe you have some past experience with this kind of situations...
If it's a stock installation of Wordpress, you can use "diff" or a similar file-comparison tool to compare your installation against the official distribution to see what changes, if any, have been made.
After you've done that and made sure you understand the purpose of any changes, you'll need to go over the configuration, account settings, and the like to make sure there aren't any backdoors or other security holes deliberately left behind.
Unfortunately the only definitive safe answer I can offer is a fresh install, followed by a copy of TEXT content into the new site. Non-text-content items you want to retain will need to be either rewritten or thoroughly vetted.

How to check if it is a good captcha? [closed]

Closed. This question is off-topic. It is not currently accepting answers.
Want to improve this question? Update the question so it's on-topic for Stack Overflow.
Closed 9 years ago.
Improve this question
I'm implementing a captcha system using this code: http://www.thomasmoore.it/webdesign/asp/captcha.asp
As you can see in that page there is an example of image with alphanumeric characters.
Below an example:
I would like to understand if that image is strong enough or not.
Do you know if there are scripts that can break it?
Thank you!
I don't know how answer your question but i suggest using controls that have been used and tested before..like recaptcha
I wouldn't use it, not because it's not safe, but because it's not accessible. What if your users use screenreaders? Stay with an accessible solution such as recaptcha and make your users happy ;)
As for the security, mine may be a controversial opinion, but I think it doesn't matter so much. Why? because if an attacker is serious about breaking your site, they can use the Mechanical Turk or one of the bazillion online services that offers to solve any captcha by hand for a really low price. Of course a good captcha is one more barrier for them to break, but don't trust them too much.

what do I need to ask in the registration page for the log in. in asp using vb [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 8 years ago.
Improve this question
what kind of questions do I need to ask. Also, I don't want everyone to have the ability to create an account so how can I distinguish the people that i want to give them the ability to create an account?
In my login page i asked about username, password, email address, and a full name. also, in this case every body will have the ability to create an account. what i really want is let certain people to have ability to create an account, just certain people.
please if something not clear just ask me again or help me with it. I am new and so fresh to work by myself so any help will mean a lot to me. thanks
you can use this site http://expression.microsoft.com/en-us/cc964293.aspx and they perfectly explain how to create your login page.
Technically, you don't NEED to ask any. You could simply auto-generate a username and password combination and give it to the user.

Resources